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1.Amber is working as a team lead in an organization. She was instructed to share a 
policy document with all the employees working from remote locations and collect 
them after filling. She shared the files from her mobile device to the concerned 
employees through the public Internet. An unauthorized user accessed the file in 
transit, modified the file, and forwarded it to the remote employees. 
Based on the above scenario, identify the security risk associated with mobile usage 
policies. 
A. Lost or stolen devices 
B. Infrastructure issues 
C. Improperly disposing of devices 
D. Sharing confidential data on an unsecured network 
Answer: D 
© 

& 
2. Barbara, a security professional, was monitoring the loT traffig shrough a security 
solution. She identified that one of the infected devices is trying to connect with other 
lol devices and spread malware onto the network. Identify tHe port number used by 
the malware to spread the infection to other loT devices? 


A. Port 25 Š 
B. Port 443 a 
C. Port 110 R 
D. Port 48101 $ 

«O 
Answer: D PS 
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3. Below are the various steps invdived in establishing a network connection using the 
shared key authentication process. 
N 
(ey 
4.The AP sends a challegge text to the station. 


(e 
5.The station connests to the network. 
RD 
© 
6.The station éhcrypts the challenge text using its configured 128-bit key and sends 
the encrypted text to the AP. 


7.The station sends an authentication frame to the AP. 


8.The AP uses its configured WEP key to decrypt the encrypted text and compares it 
with the original challenge text. 

What is the correct sequence of steps involved in establishing a network connection 
using the shared key authentication process? 

A. 4 -- >2 -- >1 -- >3 -- >5 

B. 4 -- >1 -- >3 -- >5 -- >2 


C. 2 -- >4 -- >5 -- >1 -- 3 
D. 4 -- >5 -- 33 -- >2 -- >1 
Answer: B 


9. Identify the backup mechanism that is performed within the organization using 
external devices such as hard disks and requires human interaction to perform the 
backup operations, thus, making it suspectable to theft or natural disasters. 

A. Cloud data backup 

B. Onsite data backup 

C. Offsite data backup 

D. Online data backup 

Answer: B © 


10. Which of the following types of network traffic flow does n@tprovide encryption in 
the data transfer process, and the data transfer between the Sender and receiver is in 
plain text? < 
A. SSL traffic Š 
B. HTTPS traffic a 

C. SSH traffic g? 
D. FTP traffic © 
Answer: D s 


® 
11. Alice was working on her maja project she saved all her confidential files and 
locked her laptop. Bob wantedt6 access Alice's laptop for his personal use but was 
unable to access the laptop-ue to biometric authentication. 

Which of the following neswork defense approaches was employed by Alice on her 
laptop? Pi 

A. Retrospective approach 

B. Preventive approach 

C. Reactive approach 

D. Proactive approach 

Answer: B 


12. Kalley, a network administrator of an organization, has installed a traffic 
monitoring system to capture and report suspicious traffic signatures. In this process, 
she detects traffic containing password cracking, sniffing, and brute-forcing 
attempts.Which of the following categories of suspicious traffic signature were 
identified by Kalley through the installed monitoring system? 

A. Reconnaissance signatures 


B. Unauthorized access signatures 
C. Denial-of-service (DoS) signatures 
D. Informational signatures 

Answer: B 


13. Finch, a security auditor, was assigned the task of providing devices to all the 
employees to enable work from remote locations. Finch restricted the devices to work 
only for organization-related tasks, and not for personal use. 

Which of the following mobile usage policies has Finch implemented in the above 
scenario? 


A. CYOD 
B. COBO 2 
C. COPE & 
D. BYOD RG 
O 
Answer: B © 
& 
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14. In an organization, employees are restricted from sing their own storage devices, 

and only the company's portable storage devices afe allowed. As employees are 

carrying the company's portable device outside eir premises, the data should be 


protected from unauthorized access. Ñ 
Which of the following techniques can be used to protect the data in a portable 
storage device? o 
A. Data retention se 
oe 
B. Data encryption BS 
C. Data resilience Vv 
D. Disk mirroring A` 
Answer: B S 
O 
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15. Which of the,following algorithms uses a sponge construction where message 
blocks are XORed into the initial bits of the state that the algorithm then invertible 
permutes? 
A. MD5 
B. SHA-2 
C. SHA-3 
D. MD6 
Answer: C 


16. Below are the various steps involved in the creation of a data retention policy. 
1.Understand and determine the applicable legal requirements of the organization 


2.Ensure that all employees understand the organization's data retention policy 
3.Build a data retention policy development team 


17.ldentify and classify the data to be included in the data retention policy 5.Develop 
the data retention policy 

Identify the correct sequence of steps involved. 

A. 3 -- >2 -- >5 -- >4 -- >1 

B. 3 -- >1 -- >4 -- >5 -- >2 

C. 1 -- >3 -- >4 -- >2 -- >5 

D. 1 -- >5 -- >4 -- >2 -- 53 

Answer: B 


© 
18. Cibel.org, an organization, wanted to develop a web application, for marketing its 
products to the public. In this process, they consulted a cloud sece provider and 
requested provision of development tools, configuration management, and 
deployment platforms for developing customized applicatio $ 
Identify the type of cloud service requested by Cibel.org? the above scenario. 


A. Security-as-a-service (SECaaS) y 
B. Platform-as-a-service Fa 

i 2 
C. Infrastructure-as-a-service {laaS) g? 
D. Identity-as-a-service {IDaaS) © 

40 
Answer: B eo 
o 
es 


19. Ben, a computer user, applied fer a digital certificate. A component of PKI verifies 
Ben's identity using the credentials provided and passes that request on behalf of Ben 
to grant the digital certificat 

Which of the following Pkscomponents verified Ben as being legitimate to receive the 
certificate? Pi 

A.Certificate authority (CA) 

B.Registration authority {RA) 

C.Certificate ditectory 

D.Validation authority (VA) 

Answer: B 


20. George, a certified security professional, was hired by an organization to ensure 
that the server accurately responds to customer requests. In this process, George 
employed a security solution to monitor the network traffic toward the server. While 
monitoring the traffic, he identified attack signatures such as SYN flood and ping of 
death attempts on the server. 

Which of the following categories of suspicious traffic signature has George identified 


in the above scenario? 

A. Informational 

B. Reconnaissance 

C. Unauthorized access 
D. Denial-of-service (DoS) 
Answer: D 


21. Identify the loT communication model that serves as an analyzer for a company to 
track monthly or yearly energy consumption. Using this analysis, companies can 
reduce the expenditure on energy. 

A. Device-to-device model 


B. Cloud-to-cloud model oe 
C. Device-to-cloud model Š 
D. Device-to-gateway model of 
Answer: C © 
Ss 
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22. Finch, a security professional, was instructed to sivengthen the security at the 
entrance. At the doorway, he implemented a secur mechanism that allows 
employees to register their retina scan and a unéGue six- digit code, using which they 
can enter the office at any time. rA 
Which of the following combinations of aut&ntication mechanisms is implemented in 
the above scenario? oe 
A. Biornetric and password authentication 
B. Password and two-factor authe/ffication 
C. Two-factor and smart card authentication 
D. Smart card and password authentication 
Answer: A oe 

< 
23. Identify the UBA tool that collects user activity details from multiple sources and 
uses artificial ifttelligence and machine learning algorithms to perform user behavior 
analysis to prevent and detect various threats before the fraud is perpetrated. 
A. Nmap 
B. ClamWin 
C. Dtex systems 
D. Wireshark 
Answer: C 


24. Below is the list of encryption modes used in a wireless network. 


25.WPA2 Enterprise with RADIUS 
26.WPA3 
27.WPA2 PSK 


28.WPA2 Enterprise 
Identify the correct order of wireless encryption modes in terms of security from high 
to low. 

A. 2 -- >1 -- >4 -- >3 

B. 3 -- >1 -- >4 -- >2 

C. 4 -- >2 -- >3 -- >1 

D. 4 -- >3 -- >2 -- >1 @ 

Answer: A s 


we 
29. Which of the following IDS components analyzes the traffic and reports if any 
suspicious activity is detected? ge 
A. Command console $ 
B. Network sensor o 
C. Database of attack signatures R? 
D. Response system P4 
Answer: B s 


s 
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30. Which of the following objects. the container network model (CNM) contains the 
configuration files of a containgvs network stack, such as routing table, container's 
interfaces, and DNS settings? 

A.Endpoint S 

B.Sandbox Pid 

C.Network drivers x 

D.IPAM drivers Ý 

Answer: B 


31. Mark, a network administrator in an organization, was assigned the task of 
preventing data from falling into the wrong hands. In this process, Mark implemented 
authentication techniques and performed full memory encryption for the data stored 
on RAM. 

In which of the following states has Steve encrypted the data in the above scenario? 
A. Data in use 

B. Data in transit 

C. Data inactive 


D. Data in rest 
Answer: A 


32. Jacob, an attacker, targeted container technology to destroy the reputation of an 
organization. To achieve this, he initially compromised a single container exploiting 
weak network defaults, overloaded the rest of the containers in the local domain, and 
restricted them from providing services to legitimate users. 

Identify the type of attack initiated by Jacob in the above scenario. 

A. Cross-container attack 

B. Docker registry attack 

C. Container escaping attack 

D. Replay attack © 
Answer: A s 


we 
33. Which of the following ISO standards provides guidance to ensure that cloud 
service providers offer ge 
appropriate information security controls to protect thgsprivacy of their customer's 
clients by securing personally identifiable information entrusted to them? 


A. ISO/IEC 27001 R? 
B. ISO/IEC 27018 K4 
C. ISO/IEC 27011 Ea 
D. ISO/IEC 27007 o 
Answer: B es 
oe 
c 
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34. John has recently joinechan organization and completed his security training. The 


organization conducted aSecurity campaign on their employees by sending a fake 
email stating the urg ney of password reset. John identified that it was an illegitimate 
mail and reported itas spam. 

Identify the type pf attack initiated by the organization as part of the security campaign 
discussed in the above scenario. 

A. Phishing 

B. Tailgating 

C. Dumpster diving 

D. Shoulder surfing 

Answer: A 


35. Peter, a network defender, was instructed to protect the corporate network from 
unauthorized access. To achieve this, he employed a security solution for wireless 
communication that uses dragonfly key exchange for authentication, which is the 


strongest encryption algorithm that protects the network from dictionary and key 
recovery attacks. 

Identify the wireless encryption technology implemented in the security solution 
selected by Peter in the above scenario. 

A.WPA 

B.WPA3 

C.EAP 

D.WEP 

Answer: B 


36. Jamie wants to send a confidential file to her friend Alice. For this purpose, they 
installed an application for securely sharing the file. The application employs an 
encryption algorithm that uses the same shared secret key for encryption and 
decryption of data. oe 
Identify the type of cryptography employed by the application, sed by Alice and Jamie 
for file sharing. a 
A. Symmetric cryptography ge 
B. Public-key cryptography Y 
C. RSA cryptosystem 
D. Asymmetric cryptography R? 
Answer: A <% 
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37. James was recruited as securit Srsonnel in an organization and was instructed 
to secure the organization's infrast ‘ah from physical threats. To achieve this, 
James installed CCTV systemgmear gates, reception, hallways, and workplaces to 
capture illicit activities insidghe premises, identify activities that need attention, 
collect images as evidengé, and aid in an alarm system. 

Identify the type of ie security control implemented by James in the above 
scenario. 

A. Video surveillgtee 

B. Fire- fighting Systems 

C. Lighting system 

D. Physical barriers 

Answer: A 


38. Below are various authentication techniques. 
39.Retina scanner 


40.One-time password 


41.DNA 


42.Voice recognition 

Identify the techniques that fall under biometric authentication. 
A. 1, 3, and 4 

B. 1,2, and 3 

C. 2, 3, and 4 

D. 1, 2, and 4 

Answer: A 


43. Kelly, a cloud administrator at TechSol Inc., was instructed to seległ a cloud 
deployment model to secure the corporate data and retain full contig over the data. 
Which of the following cloud deployment models helps Kelly in the?above scenario? 


A. Public cloud oe 
B. Multi cloud < 
C. Community cloud ge 
D. Private cloud Š 
Answer: D Fa 
Cj 
g? 
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44. Steve was sharing his confidential file witth John via an email that was digitally 
signed and encrypted. The digital signattire was made using the "Diffie-Hellman 
(X9.42) with DSS" algorithm, and thesémail was encrypted using triple DES. 
Which of the following protocols aifiploys the above features to encrypt an email 
message? NA 


A. S/MIME A` 
B. EAP S 
C. RADIUS Pid 


D.TACACS+ aÝ% 
Answer: A ~ 
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